CVE-2026-25454 WordPress The League theme <= 4.4.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in MVPThemes The League the-league allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects The League: from n/a through = 4.4.1...

CVE-2019-25454

creationtimestamp| type| source ---|---|--- 2026-02-25 02:40:10+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfnnq42oyi2l...

CVE-2025-25454

Tenda AC10 V4.0siV16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via wanSpeed2...

CVE-2025-25454

creationtimestamp| type| source ---|---|--- 2025-04-17 17:57:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12301 2025-04-17 18:54:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmzrqyljt42g 2025-04-17 23:01:09+00:00| seen|...

CVE-2025-25454

Tenda AC10 V4.0siV16.03.10.20 is vulnerable to Buffer Overflow in AdvSetMacMtuWan via wanSpeed2...

CVE-2023-25454

Missing Authorization vulnerability in Nate Reist Protected Posts Logout Button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Protected Posts Logout Button: from n/a through 1.4.5...

CVE-2023-25454 WordPress Protected Posts Logout Button plugin <= 1.4.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in Nate Reist Protected Posts Logout Button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Protected Posts Logout Button: from n/a through 1.4.5...

CVE-2023-25454

CVE-2023-25454 maps to the WordPress Protected Posts Logout Button plugin vulnerability (

CVE-2023-25454 WordPress Protected Posts Logout Button plugin <= 1.4.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in Nate Reist Protected Posts Logout Button protected-posts-logout-button allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Protected Posts Logout Button: from n/a through = 1.4.5...

CVE-2024-25454

creationtimestamp| type| source ---|---|--- 2024-02-09 16:27:22+00:00| seen| https://t.me/ctinow/182127 2024-02-13 02:16:38+00:00| seen| https://t.me/ctinow/183553 2024-03-03 09:16:23+00:00| seen| https://t.me/ctinow/198609...

CVE-2024-25454

Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference via the AP4DescriptorFinder::Test function...

CVE-2024-25454

Bento4 v1.6.0-640 contains a NULL pointer dereference in AP4_DescriptorFinder::Test(). The CVE entry documents this as the root cause, with a high availability impact (AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H). The official sources in the provided documents consistently reference Bento4 1.6.0-640 and ...

CVE-2024-25454

Bento4 v1.6.0-640 was discovered to contain a NULL pointer dereference via the AP4DescriptorFinder::Test function...

WordPress Protected Posts Logout Button Plugin <= 1.4.5 is vulnerable to Broken Access Control

Software Protected Posts Logout Button Type Plugin Vulnerable versions = 1.4.5 Fixed in 1.4.6 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-25454 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 524d5fc86c25 Credits yuyudhn Require...

CVE-2022-25454

creationtimestamp| type| source ---|---|--- 2022-03-18 23:22:59+00:00| seen| https://t.me/cibsecurity/39270...

CVE-2022-25454

The CVE-2022-25454 entry concerns Tenda AC6 v15.03.05.09_multi with a stack overflow in the SetFirewallCfg function triggered by the loginpwd parameter. Public sources in the connected set describe this as a stack overflow vulnerability that can lead to arbitrary command execution on the device. ...

CVE-2021-25454

CVE-2021-25454 corresponds to an OOB read in the libsaacextractor.so library, vulnerability class affecting Samsung SMR components prior to the September 2021 Release 1. The flaw enables remote DoS via a crafted AAC file, as described across multiple sources (NVD/Red Hat/CVE records). Technical c...

CVE-2020-25454

creationtimestamp| type| source ---|---|--- 2020-11-19 00:40:45+00:00| seen| https://t.me/cibsecurity/16568 2020-12-09 06:25:27+00:00| seen| https://t.me/cibsecurity/17402...

CVE-2020-25454

Cross-site Scripting XSS vulnerability in grocy 2.7.1 via the add recipe module, which gets executed when deleting the recipe...

CVE-2020-25454

CVE-2020-25454 affects grocy 2.7.1: a Cross-site Scripting (XSS) vulnerability in the add recipe module that executes when deleting a recipe. The issue is described as a stored XSS caused by input in the add recipe flow, with exploitation steps and payload demonstrated in the PacketStorm PoC for ...